Vulnerabilities > Linux > Linux Kernel > 2.5.17

DATE CVE VULNERABILITY TITLE RISK
2006-10-05 CVE-2006-5158 Improper Locking vulnerability in multiple products
The nlmclnt_mark_reclaim in clntlock.c in NFS lockd in Linux kernel before 2.6.16 allows remote attackers to cause a denial of service (process crash) and deny access to NFS exports via unspecified vectors that trigger a kernel oops (null dereference) and a deadlock.
network
low complexity
linux redhat canonical CWE-667
7.5
2006-08-23 CVE-2006-3745 Buffer Overflow vulnerability in Linux Kernel SCTP_Make_Abort_User Function
Unspecified vulnerability in the sctp_make_abort_user function in the SCTP implementation in Linux 2.6.x before 2.6.17.10 and 2.4.23 up to 2.4.33 allows local users to cause a denial of service (panic) and possibly gain root privileges via unknown attack vectors.
local
low complexity
linux
7.2
2006-08-21 CVE-2006-4145 Resource Management Errors vulnerability in Linux Kernel
The Universal Disk Format (UDF) filesystem driver in Linux kernel 2.6.17 and earlier allows local users to cause a denial of service (hang and crash) via certain operations involving truncated files, as demonstrated via the dd command.
local
low complexity
linux CWE-399
4.9
2006-07-05 CVE-2006-2935 Classic Buffer Overflow vulnerability in multiple products
The dvd_read_bca function in the DVD handling code in drivers/cdrom/cdrom.c in Linux kernel 2.2.16, and later versions, assigns the wrong value to a length variable, which allows local users to execute arbitrary code via a crafted USB Storage device that triggers a buffer overflow.
local
low complexity
linux debian canonical CWE-120
4.6
2006-04-20 CVE-2006-1056 Cryptographic Issues vulnerability in multiple products
The Linux kernel before 2.6.16.9 and the FreeBSD kernel, when running on AMD64 and other 7th and 8th generation AuthenticAMD processors, only save/restore the FOP, FIP, and FDP x87 registers in FXSAVE/FXRSTOR when an exception is pending, which allows one process to determine portions of the state of floating point instructions of other processes, which can be leveraged to obtain sensitive information such as cryptographic keys.
local
low complexity
freebsd linux CWE-310
2.1
2005-12-31 CVE-2005-4351 Local Security vulnerability in kernel
The securelevels implementation in FreeBSD 7.0 and earlier, OpenBSD up to 3.8, DragonFly up to 1.2, and Linux up to 2.6.15 allows root users to bypass immutable settings for files by mounting another filesystem that masks the immutable files while the system is running.
local
low complexity
dragonfly freebsd linux openbsd
4.3
2005-12-22 CVE-2005-3660 Local Socket Buffer Memory Exhaustion Denial of Service vulnerability in Linux Kernel
Linux kernel 2.4 and 2.6 allows attackers to cause a denial of service (memory exhaustion and panic) by creating a large number of connected file descriptors or socketpairs and setting a large data transfer buffer, then preventing Linux from being able to finish the transfer by causing the process to become a zombie, or closing the file descriptor without closing an associated reference.
local
low complexity
linux
4.9
2005-11-20 CVE-2005-2709 Resource Management Errors vulnerability in Linux Kernel
The sysctl functionality (sysctl.c) in Linux kernel before 2.6.14.1 allows local users to cause a denial of service (kernel oops) and possibly execute code by opening an interface file in /proc/sys/net/ipv4/conf/, waiting until the interface is unregistered, then obtaining and modifying function pointers in memory that was used for the ctl_table.
local
low complexity
linux CWE-399
4.6
2005-05-02 CVE-2005-0815 ISO9660 Filesystem Handling vulnerability in Linux Kernel
Multiple "range checking flaws" in the ISO9660 filesystem handler in Linux 2.6.11 and earlier may allow attackers to cause a denial of service or corrupt memory via a crafted filesystem.
network
low complexity
linux
6.4
2005-05-02 CVE-2005-0400 Unspecified vulnerability in Linux Kernel
The ext2_make_empty function call in the Linux kernel before 2.6.11.6 does not properly initialize memory when creating a block for a new directory entry, which allows local users to obtain potentially sensitive information by reading the block.
local
low complexity
linux
2.1